Solved

Firewalling through Linuxconf

Posted on 2000-02-15
5
252 Views
Last Modified: 2010-04-20
I was just playing with Linuxconf, and I noticed that it is possible to set up IP routing rules through it, instead of manually putting "ipchains" statements in rc.local. Now I just need to find out where does Linuxconf put this information?
0
Comment
Question by:tibori
  • 2
  • 2
5 Comments
 
LVL 40

Expert Comment

by:jlevie
Comment Utility
IP routing rules just specify how to get someplace. They don't provide any actual network security, for that you need ipchains and all that goes with it.
0
 
LVL 3

Author Comment

by:tibori
Comment Utility
jlevie: It is called "firewalling" and there are some of the same options as with ipchains such as masquerading, blocking packets, forwarding packets etc. Have you tried doing this before? The reason I ask is to me it seems that its just a GUI for the ipchains commands. Even if I'm wrong, all I wanted to know is which files does the "firewalling" setup under Linuxconf modify?
Thanks
0
 
LVL 40

Accepted Solution

by:
jlevie earned 0 total points
Comment Utility
My mistake, your question asked about the about the IP routing rules, which is completely different beast from Firewalling. I've run into more than one mis-guided person who thought that playing with routing was a substitue for a firewall.

Yes it's just a GUI interface that does the same thing that that ipchains does. It modifies the contents of /proc/net/ip_fwchains and /proc/net/ip_masquerade. I'ts not clear to me how much of an advantage it is over a config file. You still have to come up with the rules and you can't see all of the rules at once the way you can if they are in a file.
0
 

Expert Comment

by:castleinfo
Comment Utility
You probably know this already but :
Most people create an rc.firewall file with all of the routing and IPCHAINS cmnds then change rc.local so that it runs the rc.firewall script.

Don't know anything about linuxconf though...
0
 
LVL 3

Author Comment

by:tibori
Comment Utility
jlevie: Thanks, but I think you're right. It just makes things more confusing. I think I will go back to the ipchains commands.
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Join & Write a Comment

Suggested Solutions

This is the error message I got (CODE) Error caused by incompatible libmp3lame 3.98-2 with ffmpeg I've googled this error message and found out sometimes it attaches this note "can be treated with downgrade libmp3lame to version 3.97 or 3.98" …
rdate is a Linux command and the network time protocol for immediate date and time setup from another machine. The clocks are synchronized by entering rdate with the -s switch (command without switch just checks the time but does not set anything). …
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now